Visible to the public Enabling Privacy-Preserving Sharing of Cyber Threat Information in the Cloud

TitleEnabling Privacy-Preserving Sharing of Cyber Threat Information in the Cloud
Publication TypeConference Paper
Year of Publication2019
AuthorsFan, Wenjun, Ziembicka, Joanna, de Lemos, Rogério, Chadwick, David, Di Cerbo, Francesco, Sajjad, Ali, Wang, Xiao-Si, Herwono, Ian
Conference Name2019 6th IEEE International Conference on Cyber Security and Cloud Computing (CSCloud)/ 2019 5th IEEE International Conference on Edge Computing and Scalable Cloud (EdgeCom)
KeywordsAPI Gateway, application program interfaces, attack prediction, C3ISP Framework, cloud computing, Collaboration, collaborative analysis, Collaborative sharing, Confidential Information Sharing and Analysis for Cyber Protection, CTI data, Cyber Threat Information, cyber threat management, cyber-attacks, data privacy, data sharing, data sources, Information management, internetworking, Logic gates, Metrics, network threats, Portals, privacy exposure, privacy preserving, privacy-preserving means, privacy-preserving Sharing, pubcrawl, Resiliency, Scalability, security, security of data, user privacy in the cloud
AbstractNetwork threats often come from multiple sources and affect a variety of domains. Collaborative sharing and analysis of Cyber Threat Information (CTI) can greatly improve the prediction and prevention of cyber-attacks. However, CTI data containing sensitive and confidential information can cause privacy exposure and disclose security risks, which will deter organisations from sharing their CTI data. To address these concerns, the consortium of the EU H2020 project entitled Collaborative and Confidential Information Sharing and Analysis for Cyber Protection (C3ISP) has designed and implemented a framework (i.e. C3ISP Framework) as a service for cyber threat management. This paper focuses on the design and development of an API Gateway, which provides a bridge between end-users and their data sources, and the C3ISP Framework. It facilitates end-users to retrieve their CTI data, regulate data sharing agreements in order to sanitise the data, share the data with privacy-preserving means, and invoke collaborative analysis for attack prediction and prevention. In this paper, we report on the implementation of the API Gateway and experiments performed. The results of these experiments show the efficiency of our gateway design, and the benefits for the end-users who use it to access the C3ISP Framework.
Citation Keyfan_enabling_2019